Posted June 16, and yet another reminder why you shouldn’t re-use passwords across sites. I know my readers don’t really need any such reminders, but do talk to your kids, parents, grandparents, friends…. What happened? On Tuesday evening PST, we became aware of unauthorized attempts to access a large number of GitHub.com accounts. This appears to…
Category: Other
Computer Crash Wipes Out Years of Air Force Investigation Records
Marcus Weisgerber reports: The U.S. Air Force has lost records concerning 100,000 investigations into everything from workplace disputes to fraud. A database that hosts files from the Air Force’s inspector general and legislative liaison divisions became corrupted last month, destroying data created between 2004 and now, service officials said. Neither the Air Force nor Lockheed Martin, the defense…
Low-tech break-in results in breach notification in Phoenix
The administrative offices of Mountain Park Health Center in Phoenix was burglarized on March 22nd. Burglars rifled through the contents of locked file cabinets containing personnel information, but none of the contents were stolen. The kinds of employee information in the files included names, addresses, telephone numbers, SSN, dates of birth, and limited financial information. Through…
Rostering, Provisioning, Owning Your Stack, and Transparency: a Look at Lewis Palmer
The Lewis Palmer School District data security vulnerability and breach continues to concern parents, and I had updated my original post with some observations by Bill Fitzgerald. Now Bill has written his own post on the situation. Giving myself unbridled permission to quote liberally from his thoughtful write-up, here’s part of it: At the 5/19 school…
UK man charged over attack on Mumsnet
There’s been an arrest in the attacks on parenting site Mumsnet. Charlie Osborne reports: A British man has been charged in connection to a cyberattack against Mumsnet which knocked the popular parenting website offline. Mumsnet experienced a data breach earlier this year when a hacker broke into the website’s servers and exploited administration privileges to redirect…
Patient appointment booking service notifying patients of potential breach
Zocdoc, an online booking system for dental or medical appointments, is first notifying patients almost one year after they learned programming errors enabled providers to access patient information they should not have had access to. In June, 2015, Zocdoc reportedly learned that a programming error had allowed some past or current practice staff members to access…